InformationEnable 'docker/default' seccomp profile in your pod definitions.
Seccomp (secure computing mode) is used to restrict the set of system calls applications can make, allowing cluster administrators greater control over the security of workloads running in the cluster. Kubernetes disables seccomp profiles by default for historical reasons. You should enable it to ensure that the workloads have restricted actions available within the container.
SolutionSeccomp is an alpha feature currently. By default, all alpha features are disabled. So, you would need to enable alpha features in the apiserver by passing ''--feature-gates=AllAlpha=true'' argument.
Edit the '/etc/kubernetes/apiserver' file on the master node and set the 'KUBE_API_ARGS' parameter to ''--feature-gates=AllAlpha=true''
Based on your system, restart the 'kube-apiserver' service. For example:
systemctl restart kube-apiserver.service
Use 'annotations' to enable the 'docker/default' seccomp profile in your pod definitions. An example is as below:
- name: trustworthy-container